|
|
This command shows RADIUS settings and statistics.
show radius {config | statistics}
config | This command shows the current settings for RADIUS parameters. |
statistics | The show radius statistics command displays packet statistics for the RADIUS client. |
The following sections describe the display contents for each command.
The show radius config display includes the following information:
State | Valid states are On and Off. |
UDP | This is the UDP port that will be used for authentication or accounting. Any valid UDP port value can be used. The defaults are 1645 for authentication and 1646 for accounting. |
Secret | This shows the secret shared between the RADIUS client and server. It is a string of 1-31 bytes. The server must be configured with the same client secret. |
IP address | This is the IP address of the RADIUS server. An address of 0.0.0.0 for the secondary server indicates that it has been disabled. |
Attempts | This value shows the number of attempts to be made at transmitting a packet to the RADIUS server. If a response is not received from the primary server in the specified number of attempts, the secondary server (if enabled) will be used. |
The show radius statistics display includes the following information:
Primary | This is the number of packets transmitted to or received from the primary server. |
Secondary | This is the number of packets transmitted to or received from the secondary server. |
Errors | This is the number of packets that had errors while being transmitted or received. |
No Match | This is the number of packets that were received but didn't have a matching packet on the transmit hold queue. |
Timeouts | This is the number of packets that did not get a response from the primary or secondary servers. |
Holdq | This is the number of packets that are being transmitted to a server but have not received a response. |
xmit | This is the number of packets sent to a server. It does not include retries. |
retry | This is the number of retry packets sent to a server. |
rcv | This is the number of packets received from a server. |
Name | This is the name of the user currently using this port. Inactive means the port is not being used. |
Session ID | This ID is unique per user session. It is recorded in the server detail file and is used for matching accounting start and stop records. |
Secs | This is the number of seconds the current user has been connected. |
The following sections show an example for each command.
The following example displays are for the show radius config command:
RADIUS State UDP Authentication On 1645 Accounting On 1646 Secret 'Homer Simpson' Server IP address Attempts Primary 1.2.3.4 5 Secondary 9.8.7.6 5
The following example displays are for the show radius statistics command:
Authentication xmit retry rcv Primary 1 0 1 Secondary 0 0 0 Errors 0 0 No Match 0 Timeouts 0 Holdq 0 Accounting xmit retry rcv Primary 3 0 3 Secondary 0 0 0 Errors 0 0 No Match 0 Timeouts 0 Holdq 0 Users Name Session ID Secs Wan0 Inactive Wan1 Inactive Wan2 Wilber 01234567-00000001 138 Wan3 Inactive
| Command | Description |
|---|---|
configure Radius | Configures the concentrator for communication with a RADIUS server for user authentication |
edit config VPN Users | Creates a user list for VPN authentication |
Posted: Wed Sep 27 11:33:20 PDT 2000
Copyright 1989-2000©Cisco Systems Inc.